Snyk Acquires FossID

FossID is a software composition analysis tool that scans code for open source licenses and vulnerabilities. It is the third acquisition by Snyk in the past 6 months.

FossID, a software composition analysis tool that scans code for open source licenses and vulnerabilities

Source: Snyk Acquires FossID to Accelerate Worldwide Developer-First Security Adoption | Snyk

The Instagram ads Facebook won’t show you

Signal, the company offering secure and private messaging, tried to advertise on Facebook. Naturally, the company tried to drive their value in privacy. They chose to point out the implications Facebook’s businesmodel has for these values.

Apparently Facebook didn’t like the ads.

Signal App Ad.
Signal ad

Source: Signal >> Blog >> The Instagram ads Facebook won’t show you

Der Mann in Merkels Rechner

Hakan Tanriverdi, Datenjournalist und Reporter für Cyber- und IT-Sicherheit beim Bayerischen Rundfunk, hat zusammen mit Florian Flade einen Podcast über CyberSpionage gemacht. Die beiden zeigen dabei auf, wie selbstverständlich Spionage auf diesem Niveau mittlerweile für Regierungen geworden ist.

Das Abo mit Apple Podcasts gibt es direkt hier.

500M LinkedIn Profiles

Just after Facebook lost 500M user profiles to the public Internet, it’s LinkedIn’s turn a week later. Wherever data is collected, data is subject to breach or theft.

Like the Facebook incident earlier this week, the information — including user profile IDs, email addresses and other PII — was scraped from the social-media platform.

From the article

via threatpost.com

Happy Easter, y‘all

Facebook leaked sensitive profile information, including 6 million German accounts:

Auth0: Log in to BTP with your social accounts.

BTP Trial

The recent acquisition of Okta (Auth0) caught my attention. Until last week, I didn’t know Auth0 beyond the libraries they provide for JWT. Upon further investigation, I was pleasantly surprised to discover that they are a company that was born in Argentina in 2013 and that their founders are passionate developers (When was the last time you saw a CEO of a $6.5B company pushing his codes to Github and blogging about his hobbyist Arduino projects?

Source: Auth0: Log in to BTP with your social accounts.

DuckDuckGo calls out Google for spying on users.

When Apple introduced labels in their app store to indicate which data an app would link to user information it created transparency for many. Only Google seemed to stop on moving forward and did not publish new versions of its apps. Until recently. Now that they are updated, DuckDuckGo, a search engine advocating privacy in the digital age, calls out the abundant use of personal data.